$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa File: 437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa (raw, json) Hash identifier: VGjz6E9p3TtIiJx8tFA7UiuYc4wnibANZ2pgFN4A4cE= Subject key identifier: 1B:EB:AB:D0:7B:A1:17:06:34:65:9C:E0:B6:C2:87:5D:6E:E7:D7:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6184DE03FCE9314E6135344F32511942A012CDAF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa Signing time: Mon 08 Sep 2025 15:10:29 +0000 ROA not before: Mon 08 Sep 2025 15:10:29 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:84:de:03:fc:e9:31:4e:61:35:34:4f:32:51:19:42:a0:12:cd:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:10:29 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=6c03629caeb4da149a4df0ae67f2d127d5d626c659e5f72889499790a670e9e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a0:9c:25:b0:7f:07:27:fa:e1:a1:53:6a:87: 5f:70:d9:0c:e7:fd:a0:f9:f9:7e:87:aa:33:35:8a: 24:bc:9d:b8:8f:e6:16:73:9d:83:0e:e6:2d:93:d4: b1:e6:08:e3:d1:93:25:35:66:91:52:c1:6d:9d:ce: 69:b4:e1:fb:d6:d5:20:c9:cc:3b:44:f3:dc:8c:9a: 21:08:68:0a:de:2a:b0:21:26:da:b2:e1:ee:14:9d: b9:2f:e7:ea:67:22:a5:b3:11:91:7d:0a:15:89:45: 66:ba:b2:67:f7:97:c5:48:a7:2e:06:6f:0f:02:1c: 29:6f:38:f1:68:43:21:50:31:7e:01:d7:7f:27:aa: e0:81:c4:49:1e:8c:13:06:57:d2:f4:af:fa:48:00: 41:ee:ed:27:11:24:d5:90:e5:21:b2:9c:1b:cb:4c: d9:0a:ff:68:ae:af:d6:9e:25:5a:e8:0e:55:5f:0a: e8:05:e8:63:b1:52:19:48:76:2c:2a:0d:43:6b:54: 14:75:ba:d1:6f:07:25:5d:b5:fa:c9:c2:dc:24:cb: 88:04:f4:08:ae:bd:d6:10:4d:38:72:4b:19:dd:ee: 24:b0:3a:86:76:37:15:f1:1c:ce:3c:46:4a:03:58: 0b:43:a9:46:2f:64:71:2b:e7:aa:53:53:ff:a6:9c: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EB:AB:D0:7B:A1:17:06:34:65:9C:E0:B6:C2:87:5D:6E:E7:D7:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/437d3c38-c370-4afe-a444-07ee5ee1ed9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:2000::/40 Signature Algorithm: sha256WithRSAEncryption 16:5b:a1:95:af:c2:73:d0:88:4e:8d:d3:4a:0d:f7:93:81:49: 8e:54:f3:f7:97:42:0a:9c:92:40:ca:95:f1:d7:91:cf:80:f0: 97:20:38:ac:70:59:0b:c6:6e:08:ef:a6:14:96:c5:a2:35:71: 3c:a3:e2:c8:c2:6a:12:85:6e:ab:b3:66:66:7b:75:31:fa:54: d8:ad:0f:ec:5e:44:4d:49:87:22:ec:03:e2:03:63:5f:34:5d: 46:a4:b4:0b:72:42:3c:4c:8c:fc:72:92:83:5b:88:c7:27:56: 22:ca:ca:cc:07:f4:48:0a:2c:63:f0:4e:dc:74:2b:c4:c5:7e: 62:e2:60:ed:32:16:03:86:73:9a:94:1d:a3:92:9f:85:d5:96: 3b:46:a4:6e:56:d2:c1:2e:a0:64:c6:2f:e6:82:de:b2:f4:71: de:13:96:c8:b5:61:79:41:d4:d7:d4:bc:7b:9b:64:c6:fd:79: 76:37:ae:42:0f:63:b2:83:3c:77:cc:2c:5f:18:54:db:95:46: 31:2f:97:c8:23:ff:cf:b7:98:ed:ea:eb:f0:12:0b:92:61:fa: 4c:68:26:95:5e:5e:2f:66:ee:ca:2e:f1:3f:d1:08:cd:5a:18: 42:fd:cd:73:0d:71:a4:46:4b:a2:41:4e:3d:ef:fb:71:d1:82: 12:41:ac:f7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYYTeA/zpMU5hNTRPMlEZQqASza8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUxMDI5WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzAzNjI5Y2FlYjRkYTE0OWE0ZGYwYWU2N2YyZDEyN2Q1 ZDYyNmM2NTllNWY3Mjg4OTQ5OTc5MGE2NzBlOWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCroJwlsH8HJ/rhoVNqh19w2Qzn/aD5+X6HqjM1iiS8nbiP 5hZznYMO5i2T1LHmCOPRkyU1ZpFSwW2dzmm04fvW1SDJzDtE89yMmiEIaAreKrAh Jtqy4e4Unbkv5+pnIqWzEZF9ChWJRWa6smf3l8VIpy4Gbw8CHClvOPFoQyFQMX4B 138nquCBxEkejBMGV9L0r/pIAEHu7ScRJNWQ5SGynBvLTNkK/2iur9aeJVroDlVf CugF6GOxUhlIdiwqDUNrVBR1utFvByVdtfrJwtwky4gE9AiuvdYQTThySxnd7iSw OoZ2NxXxHM48RkoDWAtDqUYvZHEr56pTU/+mnIb1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUG+ur0HuhFwY0ZZzgtsKHXW7n12QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzN2QzYzM4LWMzNzAtNGFmZS1hNDQ0LTA3ZWU1ZWUxZWQ5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xIDANBgkqhkiG9w0BAQsFAAOCAQEAFluhla/Cc9CITo3TSg33k4FJ jlTz95dCCpySQMqV8deRz4DwlyA4rHBZC8ZuCO+mFJbFojVxPKPiyMJqEoVuq7Nm Znt1MfpU2K0P7F5ETUmHIuwD4gNjXzRdRqS0C3JCPEyM/HKSg1uIxydWIsrKzAf0 SAosY/BO3HQrxMV+YuJg7TIWA4ZzmpQdo5KfhdWWO0akblbSwS6gZMYv5oLesvRx 3hOWyLVheUHU19S8e5tkxv15djeuQg9jsoM8d8wsXxhU25VGMS+XyCP/z7eY7err 8BILkmH6TGgmlV5eL2buyi7xP9EIzVoYQv3Ncw1xpEZLokFOPe/7cdGCEkGs9w== -----END CERTIFICATE-----Generated at Sun Sep 14 07:48:17 2025 by rpki-client